mandatoryprogrammer / TrustTrees

Related projects ⓘ

Alternatives and complementary repositories for TrustTrees

• appsecco / bugcrowd-levelup-subdomain-enumeration
  This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtu…
  ☆634Updated 5 years ago
• mandatoryprogrammer / JudasDNS
  Nameserver DNS poisoning attacks made easy
  ☆516Updated 7 years ago
• mandatoryprogrammer / cloudflare_enum
  Cloudflare DNS Enumeration Tool for Pentesters
  ☆516Updated 2 years ago
• davidpepper / fierce-domain-scanner
  Fierce.pl Domain Scanner
  ☆293Updated 5 years ago
• ettic-team / dnsbin
  The request.bin of DNS request
  ☆231Updated 6 years ago
• SolomonSklash / chomp-scan
  A scripted pipeline of tools to streamline the bug bounty/penetration test reconnaissance phase, so you can focus on chomping bugs.
  ☆395Updated 4 years ago
• lightbulb-framework / lightbulb-framework
  Tools for auditing WAFS
  ☆457Updated 3 years ago
• brannondorsey / whonow
  A "malicious" DNS server for executing DNS Rebinding attacks on the fly (public instance running on rebind.network:53)
  ☆626Updated 2 years ago
• PortSwigger / hackability
  Probe a rendering engine for vulnerabilities and other features
  ☆366Updated 3 years ago
• infosec-au / enumXFF
  Enumerating IPs in X-Forwarded-Headers to bypass 403 restrictions
  ☆218Updated 2 years ago
• chris408 / ct-exposer
  An OSINT tool that discovers sub-domains by searching Certificate Transparency logs
  ☆469Updated 2 years ago
• nccgroup / tracy
  A tool designed to assist with finding all sinks and sources of a web application and display these results in a digestible manner.
  ☆553Updated last year
• RhinoSecurityLabs / SleuthQL
  Python3 Burp History parsing tool to discover potential SQL injection points. To be used in tandem with SQLmap.
  ☆465Updated 5 years ago
• PortSwigger / collaborator-everywhere
  A Burp Suite Pro extension which augments your proxy traffic by injecting non-invasive headers designed to reveal backend systems by caus…
  ☆425Updated 11 months ago
• fransr / bountyplz
  Automated security reporting from markdown templates (HackerOne and Bugcrowd are currently the platforms supported)
  ☆443Updated 5 years ago
• roglew / pappy-proxy
  An intercepting proxy for web application testing
  ☆411Updated 6 years ago
• FSecureLABS / dref
  DNS Rebinding Exploitation Framework
  ☆482Updated 3 years ago
• CaliDog / certstream-python
  Python library for connecting to CertStream
  ☆426Updated 3 months ago
• justinsteven / advisories
  ☆266Updated last year
• brannondorsey / dns-rebind-toolkit
  A front-end JavaScript toolkit for creating DNS rebinding attacks.
  ☆485Updated 3 years ago
• devoteam-cybertrust / burpcollaborator-docker
  This repository includes a set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard cer…
  ☆280Updated 4 months ago
• mandatoryprogrammer / xsshunter_client
  Correlated injection proxy tool for XSS Hunter
  ☆249Updated last year
• bitquark / dnspop
  Analysis of DNS records to find popular trends
  ☆442Updated 8 years ago
• maK- / scantastic-tool
  It's bloody scantastic
  ☆233Updated 2 years ago
• jobertabma / ground-control
  A collection of scripts that run on my web server. Mainly for debugging SSRF, blind XSS, and XXE vulnerabilities.
  ☆532Updated 7 years ago
• cheetz / sslScrape
  SSLScrape | A scanning tool for scaping hostnames from SSL certificates.
  ☆329Updated 3 years ago
• anonion0 / nsec3map
  a tool to enumerate the resource records of a DNS zone using its DNSSEC NSEC or NSEC3 chain
  ☆187Updated last year
• lc / secretz
  secretz, minimizing the large attack surface of Travis CI
  ☆321Updated 2 years ago
• trustedsec / hardcidr
  hardCIDR is a Linux Bash script, but also functions under macOS. Your mileage may vary on other distros. The script with no specified opt…
  ☆368Updated 2 years ago